Awesome!
So then, if it's already shipped, why dont I see the schema files for ppolicy? Would have thought to find it here: /opt/symas/etc/openldap/schema
find /opt/ -name *ppolicy*
/opt/symas/lib/openldap/ppolicy.la /opt/symas/lib/openldap/ppolicy.so /opt/symas/lib/openldap/ppolicy-2.5.so.0 /opt/symas/lib/openldap/ppolicy-2.5.so.0.1.2 /opt/symas/share/man/man5/slapo-ppolicy.5
Thank you again for the quick responses!
On Wed, Aug 25, 2021 at 2:07 PM Quanah Gibson-Mount quanah@symas.com wrote:
--On Wednesday, August 25, 2021 2:33 PM -0400 Dave Macias davama@gmail.com wrote:
Thank you Quanah for the response! Makes sense.
One more question: under: /opt/symas/etc/openldap/schema/README It says that ppolicy is ppolicy.schema Password Policy Schema (work in progress)
If i'm not mistaken, this would be the new ppolicy10 , yes?
https://datatracker.ietf.org/doc/html/draft-behera-ldap-password-policy-10
Actually that should be deleted from the README, thanks. But yes, the ppolicy shipped with OpenLDAP 2.5 is based on draft 10, as documented in the man page.
--Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
--On Wednesday, August 25, 2021 3:57 PM -0400 Dave Macias davama@gmail.com wrote:
Awesome!
So then, if it's already shipped, why dont I see the schema files for ppolicy? Would have thought to find it here: /opt/symas/etc/openldap/schema
I strongly advise reading the OpenLDAP 2.5 admin guide section on upgrading, specifically:
https://www.openldap.org/doc/admin25/appendix-upgrading.html#ppolicy%20overlay
which directly answers your question.
Regards, Quanah
--
Quanah Gibson-Mount Product Architect Symas Corporation Packaged, certified, and supported LDAP solutions powered by OpenLDAP: http://www.symas.com
openldap-technical@openldap.org
-
Dave Macias -
Quanah Gibson-Mount